PT-2020-4786 · Intel · Intel Wireless Bluetooth

Published

2020-11-10

Updated

2020-11-24

CVE-2020-12322

CVSS v3.1

6.5

Medium

Vector

AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: Intel(R) Wireless Bluetooth(R) versions prior to 21.110

Description: The issue exists due to insufficient input validation in Intel Wireless Bluetooth technology, which may allow a remote attacker to cause a denial of service. An unauthenticated user can potentially exploit this issue via adjacent access.

Recommendations: For versions prior to 21.110, update to version 21.110 or later to resolve the issue. As a temporary workaround, consider restricting access to adjacent devices to minimize the risk of exploitation.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

BDU:2020-05338

CVE-2020-12322

Affected Products

Intel Wireless Bluetooth

PT-2020-4786 · Intel · Intel Wireless Bluetooth

CVE-2020-12322

Weakness Enumeration

Related Identifiers

Affected Products

References · 7